Advanced Identity

AWS Cognito :

• Add user sign-up, sign-in and access control to your web and mobile apps quickly and easily

• Scales to millions of users and supports sign-in with social identity providers, such as Facebook, Google, and amazon, and entreprise identity providers via SAML 2.0.

AWS Directory services :

• Managed Microsoft Active Directory in AWS.

• Database of objects : User accounts, Computers, Printers, File shares, Security Groups.

• Centralized security management, create account, assign permissions.

AWS Single Sign-on (SSO) :

• Centrally manage single sign-on (SSO) access to multiple AWS accounts and business applications.

• Get access to loads of AWS accounts/resources with just one login.

Advanced Identity - Summary

• Reminder :

  • IAM :

    • Identity and Access Management inside your AWS account

    • For users that you trust and belong to your company

  • Organizations : Manage multiple AWS accounts.

• Security Token Service - STS : Temporary, limited-privileges credentials to access AWS resources.

• AWS Cognito : create a database of users for your mobile & web applications.

• Directory Services : integrate Microsoft Active Directory in AWS

• AWS single-sign-on (SSO) : one login for multiple AWS accounts & applications.